Privilege Escalation Vulnerability Affects Ultimate Addons for Beaver Builder
CVE-2023-51398

8.8HIGH

Key Information:

Vendor: WordPress
Status: Ultimate Addons For Beaver Builder
Vendor: CVE Published:; 17 May 2024

Summary

The vulnerability identified in Ultimate Addons for Beaver Builder created by Brainstorm Force arises from improper management of user privileges. This flaw can potentially enable attackers to escalate their privileges and gain unauthorized access to sensitive features or data within the WordPress infrastructure. The affected versions include those from n/a up to 1.35.14, making it essential for users to promptly update their installations to maintain the integrity and security of their web applications.

Affected Version(s)

Ultimate Addons for Beaver Builder <= 1.35.14

References

https://patchstack.com/database/vulnerability/bb-ultimate...

vdb-entry

CVSS V3.1

Score:

8.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
May 17, 2024
Vulnerability Reserved
Dec 18, 2023

Credit

Rafie Muhammad (Patchstack)